Virgin Media Data Leak Exposes Details of 900,000 Customers

On identical day yesterday, once the US-based telecommunication large T-Mobile admitted a knowledge breach, the UK-based telecommunication supplier Virgin Media declared that it's conjointly suffered an {information} leak incident exposing the non-public information of roughly 900,000 customers.

What happened?

Unlike the T-Mobile information breach that concerned a classy cyber attack, Virgin Media same the incident was neither a cyber attack nor the company's information was hacked.

Rather the non-public details of around 900,000 Virgin Media UK-based customers were exposed when one in all its selling databases was left unsecured on the net and accessible to anyone while not requiring any authentication.

"The precise scenario is that info keep on one in all our databases has been accessed while not permission. The incident failed to occur thanks to a hack, however as a results of the information being incorrectly designed," the corporate same in a very note printed on its web site on weekday night.

According to the notification, Virgin Media same the exposed information was accidentally left unsecured on the net from Apr nineteen, 2019—that's nearly a year—and was recently accessed by associate degree unauthorized party a minimum of once.

What kind of info was accessed?

The exposed information keep the data (listed below) on each customers and potential customers, as well as "fixed-line clients representing about 15% of that customer base," same Virgin Media CEO Lutz Schüler.

 client names,
    home addresses,
    email addresses,
    phone numbers,
    technical and merchandise info, which incorporates any requests individuals could have created mistreatment forms on the company's web site, and
    dates of birth 'in a awfully tiny range of cases.'

"Please note that this can be all of the categories of knowledge within the information, however not all of this info could have associated with each client," Virgin Media same.

The company assured its customers that the misconfigured selling information failed to embrace affected customers' account passwords or money information like credit cards or checking account numbers.

However, Schüler same the corporate doesn't grasp "the extent of the access or if any info was really used."

Who Discovered the info Leak?

The unguarded information was 1st discovered on-line by researchers at TurgenSec, World Health Organization then responsibly reported  it to Virgin Mary Media's security team as per the National Cyber Security Centre (NCSC) cybersecurity tips.

Though Virgin Mary Media has amazingly not publically acknowledged TurgenSec's findings, the researchers confirmed The Hacker News that the leaked information includes a minimum of a pair of,324,498 records regarding 900,000 people.

"We cannot represent the intentions of their communications team however stating to their customers that there was solely a breach of "limited contact information" is from our perspective understating the matter probably to the purpose of being perverted," TurgenSec same in a very statement.

According to TurgenSec team, the leaked information conjointly includes affected users':

 IP addresses,
    Requests to dam or unblock varied sexy, gore and gambling websites, such as full names and addresses,
    IMEI numbers related to their purloined phones,
    Subscriptions to the various aspects of their services, as well as premium elements,
    Device kind owned  by the user,
    The "referrer" header collected from the browsers, exposing that previous website users had visited before accessing Virgin Media.

What is Virgin Media currently doing?

The company same the unauthorized access to the information has been clean up like a shot following the invention which it launched a full freelance rhetorical investigation to see the extent of the breach incident.

The company is additionally contacting affected customers of security failure and has already notified the data Commissioner's workplace.

What affected customers ought to do now?

Affected customers ought to be suspicious of phishing emails, that are sometimes succeeding step of cybercriminals with such information in hands to trick users into making a gift of any details like their passwords and banking info.

"We urge individuals to stay cautious before clicking on associate degree unknown link or giving any details to an unproven or unknown party. on-line security recommendation and assistance on a variety of topics are offered on our web site," Virgin Media same.

Though the compromised information doesn't embrace any banking or money data, it's perpetually an honest plan to be alert and keep a detailed eye on your bank and payment card statements and report any uncommon activity to your various bank.
Virgin Media Data Leak Exposes Details of 900,000 Customers Virgin Media Data Leak Exposes Details of 900,000 Customers Reviewed by MrRobot on March 13, 2020 Rating: 5

No comments:

Powered by Blogger.